A method and apparatus for preventing denial of service attacks on hosts attached to a subnet

A denial of service attack, host technology, applied in the direction of electrical components, transmission systems, etc., can solve the problem that there is no attack prevention

Active Publication Date: 2016-08-31
TELEFON AB LM ERICSSON (PUBL)
View PDF2 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, there is no general prevention method for preventing attacks

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A method and apparatus for preventing denial of service attacks on hosts attached to a subnet
  • A method and apparatus for preventing denial of service attacks on hosts attached to a subnet
  • A method and apparatus for preventing denial of service attacks on hosts attached to a subnet

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0016] Numerous specific details are set forth in the following description. However, it is understood that embodiments of the invention may be practiced without these specific details. In other instances, well-known circuits, structures and techniques have not been shown in detail in order not to obscure the understanding of this description. However, it will be understood by those skilled in the art that the present invention may be practiced without such specific details. Those of ordinary skill in the art will be able, without undue experimentation, to implement the appropriate functionality with the included description.

[0017] Embodiments of the present invention provide methods and systems that avoid the disadvantages of the prior art. As described above, the existing technology cannot effectively prevent denial of service attacks based on the IPv6 neighbor discovery protocol. Embodiments of the invention overcome these shortcomings of the prior art by providing at...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

A method is provided for preventing a denial of service attack on a host (120) attached to a subnet (150), wherein the attack is initiated by a remote node (139) through an external network (160). The method is performed by a router (110) forwarding packets between an external network (160) and a subnet (150). The router (110) receives the packet for forwarding to a destination address in the address space of the subnet (150) according to the IPv6 protocol and looks up the destination address in a neighbor discovery ND table (170). The ND table (170) is populated by operations on the subnet (150) that are completed prior to receiving the packet. Entries in the ND table (170) store address information for hosts (120) that have been verified as active by the router (110). If the destination address is stored in the ND table (170), the router (110) forwards the packet to the destination address. Otherwise, the packet is discarded.

Description

technical field [0001] Embodiments of the present invention relate to methods and systems for preventing denial of service attacks based on the Internet Protocol Version 6 (IPv6) Neighbor Discovery Protocol. Background technique [0002] Internet Protocol version 6 (IPv6) was designed to solve the problem of address exhaustion in Internet Protocol version 4 (IPv4). Along with expanding the address space from 32 bits to 128 bits, IPv6 introduces many changes. For example, IPv6 increases the number of bits used to count hosts in a subnet and moves from the media-based Address Resolution Protocol (ARP) to the IP-based neighbor discovery protocol. IPv6 subnets are defined by the standard to have at least 64 bits for counting hosts, where previously subnets might have 6 to 12 bits for counting hosts. [0003] Carriers and security analysts have noted the problematic impact of the new larger subnets. The subnet's count space is now 16 million cubic entries. Obviously, no subne...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06
CPCH04L63/1458
Inventor J.霍尔佩恩
Owner TELEFON AB LM ERICSSON (PUBL)
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap